Lucene search

CVE-2020-28477

🗓️ 19 Jan 2021 11:13:15Reported by [email protected]Type

Package immer affected by CVE-2020-28477

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 29
Node.js	Prototype Pollution	19 Feb 202118:18	–	nodejs
OSV	Prototype Pollution in immer	20 Jan 202121:27	–	osv
OSV	CVE-2020-28477	19 Jan 202111:15	–	osv
OSV	CVE-2021-23436	1 Sep 202118:15	–	osv
OSV	Prototype Pollution in immer	2 Sep 202117:17	–	osv
OSV	RHSA-2021:1169 Red Hat Security Advisory: RHV Manager (ovirt-engine) 4.4.z [ovirt-4.4.5] security, bug fix, enhancement	16 Sep 202405:20	–	osv
Prion	Design/Logic Flaw	19 Jan 202111:15	–	prion
Prion	Type confusion	1 Sep 202118:15	–	prion
IBM Security Bulletins	Security Bulletin: IBM App Connect Enterprise Certified Container Designer Authoring components may be vulnerable to a denial of service attack (CVE-2020-28477)	29 Apr 202111:07	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in Node.js affect IBM Cloud Pak System	17 Aug 202209:46	–	ibm

Nvd

Node

immer_project immerRange<8.0.1node.js

Source	Link
snyk	www.snyk.io/vuln/SNYK-JS-IMMER-1019369
github	www.github.com/immerjs/immer/blob/master/src/plugins/patches.ts%23L213
snyk	www.snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1061986

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

19 Jan 2021 11:15Current

6.3Medium risk

Vulners AI Score6.3

CVSS25

CVSS37.5

EPSS0.00676